Simon Willison's Weblog: joe-walkerhttp://simonwillison.net/2008-09-22T09:29:59+00:00Simon WillisonAccessibility Experiment2008-09-22T09:29:59+00:002008-09-22T09:29:59+00:00https://simonwillison.net/2008/Sep/22/sitepen/#atom-tag
<p><strong><a href="http://www.sitepen.com/blog/2008/09/22/accessibility-experiment/">Accessibility Experiment</a></strong></p>
Joe Walker asks what would happen if we threw away the idea of serving the same accessible site to every user and instead tried building specific versions aimed at different disabilities.
<p>Tags: <a href="https://simonwillison.net/tags/accessibility">accessibility</a>, <a href="https://simonwillison.net/tags/joe-walker">joe-walker</a></p>
On-board vs. Off-board Comet2008-05-22T17:02:12+00:002008-05-22T17:02:12+00:00https://simonwillison.net/2008/May/22/offboard/#atom-tag
<p><strong><a href="http://cometdaily.com/2008/05/22/on-board-vs-off-board-comet/">On-board vs. Off-board Comet</a></strong></p>
Useful distinction. On-board comet runs on the same server as the rest of your application; Off-board comet is served from a separate server (generally a subdomain) and a separate stack. If you want to stick with PHP, Rails or Django for the rest of your site off-board comet looks like the way to go.
<p>Tags: <a href="https://simonwillison.net/tags/comet">comet</a>, <a href="https://simonwillison.net/tags/django">django</a>, <a href="https://simonwillison.net/tags/joe-walker">joe-walker</a>, <a href="https://simonwillison.net/tags/php">php</a>, <a href="https://simonwillison.net/tags/rails">rails</a></p>
JSON is not as safe as people think it is2007-03-05T22:51:55+00:002007-03-05T22:51:55+00:00https://simonwillison.net/2007/Mar/5/json/#atom-tag
<p><strong><a href="http://getahead.org/blog/joe/2007/03/05/json_is_not_as_safe_as_people_think_it_is.html">JSON is not as safe as people think it is</a></strong></p>
Joe Walker reminds us that even authenticated JSON served without a callback or variable assignment is vulnerable to CSRF in Firefox, thanks to that browser letting you redefine the Array constructor.
<p>Tags: <a href="https://simonwillison.net/tags/csrf">csrf</a>, <a href="https://simonwillison.net/tags/joe-walker">joe-walker</a>, <a href="https://simonwillison.net/tags/json">json</a>, <a href="https://simonwillison.net/tags/security">security</a></p>